SLIDE 1
Who Am I? Secure Identity Registration on Distributed Ledgers
Sarah Azouvi Mustafa Al-Bassam Sarah Meiklejohn (University College London)
1
Cryptocurrencies
2
Who Am I? Secure Identity Registration on Distributed Ledgers Sarah - - PowerPoint PPT Presentation
Who Am I? Secure Identity Registration on Distributed Ledgers Sarah - - PowerPoint PPT Presentation
Who Am I? Secure Identity Registration on Distributed Ledgers Sarah Azouvi Mustafa Al-Bassam Sarah Meiklejohn (University College London) 1 Cryptocurrencies 2 Cryptocurrencies Pseudonyms 2 Cryptocurrencies Pseudonyms tx(pk A pk B ) 2
SLIDE 2
SLIDE 3
Cryptocurrencies
2
Pseudonyms
SLIDE 4
Cryptocurrencies
tx(pkA pkB)
2
Pseudonyms
SLIDE 5
Blockchain for distributing benefits?
3
SLIDE 6
Blockchain for distributing benefits?
3
SLIDE 7
Blockchain for distributing benefits?
3
SLIDE 8
Related
SLIDE 9
PKI
Related
SLIDE 10
PKI Anonymous Credentials
Related
SLIDE 11
PKI Anonymous Credentials Identity management on Blockchains
Related
SLIDE 12
PKI Anonymous Credentials Identity management on Blockchains
Related
SLIDE 13
PKI Anonymous Credentials Identity management on Blockchains
Related
SLIDE 14
PKI Anonymous Credentials Identity management on Blockchains
Related
SLIDE 15
PKI Anonymous Credentials Identity management on Blockchains
uPort
Related
SLIDE 16
PKI Anonymous Credentials Identity management on Blockchains
uPort ChainAnchor
Related
SLIDE 17
PKI Anonymous Credentials Identity management on Blockchains
uPort MIT Digital certificates ChainAnchor
Related
SLIDE 18
Security
Registration I’m Alice pk
5
pk Verification
SLIDE 19
6
Security
I’m Alice pk pk
6
Registration Verification
SLIDE 20
6
Security
I’m Alice pk pk
6
Registration Verification
SLIDE 21
7
Security
I’m Alice pk pk
7
Passive verification
7
SLIDE 22
8
Security
I’m Alice pk pk
8
Active verification
8
SLIDE 23
9
Security
I’m Alice pk pk
9
Attribute integrity
9
SLIDE 24
9
Security
I’m Alice pk pk
9
Attribute integrity
9
SLIDE 25
9
Security
I’m Alice pk pk
9
Attribute integrity
9
pk
SLIDE 26
9
Security
I’m Alice pk pk
9
Attribute integrity
9
pk
SLIDE 27
10
I’m Alice ? pk
Security
Attribute privacy
SLIDE 28
Our constructions
11
SLIDE 29
Web of trust
12
Registration I’m Alice, my public key is pk tx{pkR (pk,pkrev)}
SLIDE 30
13
Web of trust
Registration I’m Alice, my public key is pk tx{(pkR1,…,pkRn) (pk,pkrev1,…,pkrevn)}
13
SLIDE 31
13
Web of trust
Registration I’m Alice, my public key is pk tx{(pkR1,…,pkRn) (pk,pkrev1,…,pkrevn)} Verification tx? pkrev?
13
SLIDE 32
Web of trust
14
- Verification: passive (on the blockchain)
- Attribute integrity: partially. Registrars cannot impersonate Alice.
But malicious coalition of users can collude
- Privacy: no
Alice + pk
SLIDE 33
Web of trust
14
- Verification: passive (on the blockchain)
- Attribute integrity: partially. Registrars cannot impersonate Alice.
But malicious coalition of users can collude
- Privacy: no
Alice + pk
SLIDE 34
Blinded web of trust
- Verification: active
- Attribute Integrity: partially
- Privacy: yes
15
SLIDE 35
Casascius
16
pk1 sk1, pk1 sk2 sk2 pk2=pk1sk2 pk2=pk1sk2 =gsk1.sk2
SLIDE 36
17
Multi-Casascius
17 17
SLIDE 37
18
Multi-Casascius
18
SLIDE 38
Multi-Casascius
- Verification: Passive
- Attribute Integrity: Satisfied. First registrar verifies id. No
registrar knows the private key.
- Privacy: yes. As long as one registrar honest
19
SLIDE 39
Implementation
20
https://github.com/musalbas/trustery
SLIDE 40
Implementation
- Add attribute (different types)
- Sign attribute
- Add/Sign Blind attribute
21
SLIDE 41
Implementation
22
SLIDE 42
Conclusion
- Different methods for achieving
registration in public distributed ledgers
- Light-weight crypto primitives
- Open problem: key recovery
23
SLIDE 43
Questions?
24